Amendments to the Claims 



Claims 1 - 3 (canceled) 

1 Claim 4 (previously presented): A method of securing document content using security 

2 containers, comprising the step of encapsulating, within a security container, an encrypted version 

3 of a document component, an encrypted version of conditional logic for controlling operations on 

4 the document component, and key distribution information usable for controlling access to the 

5 document component, wherein: 

6 the encrypted version of the document component and the encrypted version of ihc 

7 conditional logic are both encrypted using a first key; 

8 the key distribution information comprises at least two key elements; and 

9 each key element comprises (i) an identification of a user, a group of users, a process, or 

1 0 group of a processes that is authorized to access the document component; and (ii) an encrypted 

1 1 version of the first key, wherein the encrypted version of the first key comprises the first key 

1 2 encrypted using a second key that is usable only by the identified user, user group, process, or 

1 3 process group for decrypting the encrypted version of the first key, thereby enabling that user, 

1 4 group of users, process, or groups of processes to obtain the first key and use it for decrypting the 

1 5 document component and the conditional logic. 

Claim 5 (canceled) 
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1 Claim 6 (previously presented): The method according to Claim 4, wherein the first key 

2 comprises a symmetric key. 

1 Claim 7 (previously presented): The method according to Claim 6, wherein the second key 

2 comprises, for each of the key elements, a public key associated with the identified user, process, 

3 group of users, or group of processes. 

Claim 8 (canceled) 

1 Claim 9 (original): The method according lo C laim 4. wherein the conditional logic further 

2 controls access to the document component. 

1 Claim 10 (original): The method according to Claim 9, wherein the key distribution information 

2 further controls access to the conditional logic. 

Claim 11 (canceled) 

1 Claim 12 (original): The method according to Claim 4, wherein the security container is encoded 

2 in structured document format. 

1 Claim 13 (original): The method according to Claim 1 2. w herein the structured document format 

2 is Extensible Markup Tanguage ("XML") format. 
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Claim 14 (canceled) 



1 Claim 1 5 (previously presented): The method according to Claim 4, wherein at least one of the 

2 key elements identifies a group of users and wherein the users in the group are determined 

3 dynamically, upon receiving a request to access to the document component. 

1 Claim 16 (previously presented): The method according to Claim 15, wherein the dynamic 

2 determination further comprises accessing a repository where the users in the group are identified. 

1 Claim 1 7 (previously presented): The method according to Claim 4, further comprising the steps 

2 of: 

3 receiving, from a requester, a request to access the document component; 

4 programmatically determining, using the key distribution information, whether the 

5 requester is authorized to access the document component by determining whether, in any 

6 selected one of the key elements, the requester is the identified user or the identified process or is 

7 a member of the identified group of users or the identified group of processes, and if so, 

8 performing steps of: 

9 decrypting the encrypted version of the first key from the selected one of the key 

1 0 elements using the second key usable by that requester, thereby obtaining the first key; 

1 1 decrypting the encrypted version of the conditional logic using the first key, 

1 2 thereby obtaining the conditional logic; 
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1 3 decrypting the encrypted version of the document component using the first key, 

1 4 thereby obtaining the document component; and 

15 programmatically c\ alual ing. using the conditional logic, whether the request can 

16 be granted; and 

1 7 rejecting the request when the programmatically determining step has a negative result. 

1 Claim 18 (original): The method according to Claim 17, wherein the conditional logic evaluates 

2 at least one of: an identity of the requester; a device used by the requester; a context of the 

3 requester; a zone of an application used by the requester; a user profile of the requester; and a 

4 target destination of the request. 

Claims 19 - 32 (canceled) 

1 Claim 33 (previously presented): The method according to Claim 4, wherein the encrypted 

2 version of the first key in each key element is further encrypted using a secret key known to code 

3 implementing the security containers. 

1 Claim 34 (previously presented): The method according to Claim 4, wherein the encrypted 

2 version of the first key in each key element is encrypted using a secret key known to code 

3 implementing the security containers instead of using the second key, and the second key is then 

4 used to further encrypt a result of encrypting the first key using the secret key. 
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